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1 DIGITAL VIDEO RECORDER EMPLOYING A FILE SYSTEM ENCRYPTED USING 

2 A PSEUDO-RANDOM SEQUENCE GENERATED FROM A UNIQUE ID 

3 

4 BACKGROUND OF THE INVENTION 

5 Field of the Invention 

6 The present invention relates to digital video recorders. More particularly, the present 

7 invention relates to a digital video recorder employing a file system encrypted using a pseudo- 

8 random sequence generated from a unique ID. 

9 Description of the Prior Art 

10 Video cassette recorders (V CRs) in the past used a tape cassette storage medium to record 



Oil video programs in analog form. Copyright protection with VCRs is not a significant concern 

0112 since the quality of the video degrades when copied from one VCR to another. More recently, 

Cf|13 however, digital video recorders (DVRs) have been introduced which store video programs in 

Ij ; :;14 digital form. Copyright protection with DVRs is a significant concern since the video reproduces 

111 

^"15 without degradation when copied digitally from one DVR to another. 

J2l6 Prior art DVRs typically employ a conventional hard disk drive (HDD), such as an IDE 

% 17 hard disk drive, as the digital storage device since HDDs have sufficient capacity to store video 

U 

18 content and are relatively inexpensive due to their prevalent use in personal computers (PCs). 

19 Rather than design and manufacture a customized HDD for the DVR market, DVRs are 

20 constructed similar to a PC, including DVR host circuitry for interfacing with a commodity HDD 

21 which reduces the cost of the DVR. This design, however, has subjected the copyrighted video 

22 programs to unauthorized reproduction, for example, by eavesdropping while the copyrighted 

23 content is transferred from the DVR host circuitry to the HDD, or by removing the HDD and 

24 installing it in another DVR or in a PC. 

25 There is, therefore, a need to protect against unauthorized reproduction of copyrighted 

26 video programs in a DVR employing a cost effective, commodity HDD. 

27 
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SUMMARY OF THE INVENTION 



2 



The present invention may be regarded as a digital video recorder (DVR) comprising a 



3 unique ID, a hard disk drive (HDD) for storing a plurality of encrypted video programs and an 

4 encrypted file system, the encrypted file system comprising a plurality of encrypted file system 

5 entries for decrypting the plurality of video programs. The DVR further comprises host circuitry 

6 for interfacing with the HDD, the host circuitry comprising a cryptography facility for encrypting 

7 plaintext file system entries into the encrypted file system entries stored on the HDD, and for 

8 decrypting the encrypted file system entries read from the HDD into plaintext file system entries. 

9 The cryptography facility comprises a pseudo-random sequence generator, responsive to the 
10 unique ED, for generating a pseudo-random sequence. The cryptography facility further 

y 1 comprises an encoder for combining the pseudo-random sequence with the plaintext file system 

ffjL2 entries to generate the encrypted file system entries stored on the HDD, and a decoder for 

SP13 combining the pseudo-random sequence with the encrypted file system entries read from the 



encrypting a plaintext video program into an encrypted video program stored on the HDD. The 

Si 7 cryptography facility encrypts the plaintext video program into an encrypted video program 

ii 18 stored on the HDD, and encrypts the plaintext key into an encrypted key stored on the HDD in an 

19 encrypted file system entry. During read back, the cryptography facility decrypts the encrypted 

20 key into the plaintext key, and the plaintext key is used to decrypt the encrypted video program. 

21 In an alternative embodiment the pseudo-random sequence generator comprises a 

22 programmable file system (FS) polynomial. In one embodiment, the FS polynomial is 

23 programmed with coefficient values generated from the unique ID. In an alternative 

24 embodiment, the FS polynomial is programmed with a seed value generated from the unique ID. 

25 In yet another embodiment, the coefficient or seed values are generated using a programmable 

26 algorithm which can be periodically updated by an external entity to protect against system 

27 compromise. 
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In one embodiment the plaintext file system entry comprises a plaintext key for 
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1 In yet another embodiment, a plurality of distinct segment keys are used to encrypt a 

2 plaintext video program in segments. This embodiment provides further protection from 

3 unauthorized reproduction of the video program in that the entire set of segment keys must be 

4 discovered in order to successfully decrypt and copy the encrypted video program. 

5 The present invention may also be regarded as a method of processing video programs in 

6 a digital video recorder comprising host circuitry and a hard disk drive (HDD) for storing 

7 encrypted video programs and encrypted file system entries for use in decrypting the encrypted 

8 video programs. A pseudo-random sequence is generated from a unique ID associated with the 

9 host circuitry. The pseudo-random sequence is combined with a plaintext file system entry to 
10 generate one of the encrypted file system entries. The encrypted file system entry is stored on 

Oil the HDD and, during playback, read from the HDD. The pseudo-random sequence is combined 

pi 2 with the encrypted file system entry read from the HDD to generate the plaintext file system 

fpl3 entry. 

M14 BRIEF DESCRIPTION OF THE DRAWINGS 

^15 FIG. 1 shows a digital video recorder according to an embodiment of the present 

^16 invention wherein video programs are stored in encrypted form on an HDD using plaintext keys 

Jfl7 which are also encrypted using a pseudo-random sequence generated from a unique ID and 

- ^18 stored in encrypted file system entries on the HDD. 

19 FIG. 2 A shows a programmable file system (FS) polynomial implemented using a linear 

20 feedback shift register (LFSR) for generating the pseudo-random sequence of FIG. 1, wherein a 

21 seed value is generated for the LFSR from the unique ID. 

22 FIG. 2B shows a programmable FS polynomial implemented using a LFSR for 

23 generating the pseudo-random sequence of FIG. 1, wherein coefficient values are generated for 

24 the LFSR from the unique ID. 

25 FIG. 3A shows an LFSR for generating a pseudo-random sequence for encrypting a 

26 plaintext video program using a plaintext key as a seed value for the LFSR. 

27 FIG. 3B shows an LFSR for generating a pseudo-random sequence for encrypting a 
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1 plaintext video program using a plaintext key, wherein a seed value is generated from the 

2 plaintext key. In an alternative embodiment, a plurality of segment seed values are generated 

3 from the plaintext key wherein each segment seed value is used to encrypt a corresponding 

4 segment of the plaintext video program. 

5 FIG. 3C shows an LFSR for generating a pseudo-random sequence for encrypting a 

6 plaintext video program using a plaintext key, wherein coefficient values are generated from the 

7 plaintext key. In an alternative embodiment, sets of coefficient values are generated from the 

8 plaintext key wherein each set of coefficient values is used to encrypt a corresponding segment 

9 of the plaintext video program. 

10 DESCRIPTION OF THE PREFERRED EMBODIMENTS 

Ol 1 FIG. 1 shows a digital video recorder (DVR) 2 according to an embodiment of the present 

0112 invention comprising a unique ID 4, a hard disk drive (HDD) 6 for storing a plurality of 

ffU3 encrypted video programs 8 and an encrypted file system, the encrypted file system comprising a 

yi4 plurality of encrypted file system entries 10 for decrypting the plurality of encrypted video 

^15 programs 8. The DVR 2 further comprises host circuitry 12 for interfacing with the HDD 6, the 

^16 host circuitry 12 comprising a cryptography facility 14 for encrypting plaintext file system 

1:17 entries 16A into the encrypted file system entries 10 stored on the HDD 6, and for decrypting the 

18 encrypted file system entries 10 read from the HDD 6 into plaintext file system entries 16B. The 

19 cryptography facility 14 comprises a pseudo-random sequence generator 20, responsive to the 

20 unique ID 4, for generating a pseudo-random sequence 22. The cryptography facility 14 further 

21 comprises an encoder 24 for combining the pseudo-random sequence 22 with the plaintext file 

22 system entries 16A to generate the encrypted file system entries 10 stored on the HDD 6, and a 

23 decoder 26 for combining the pseudo-random sequence 22 with the encrypted file system entries 

24 1 0 read from the HDD 6 to generate the plaintext file system entries 16B. 

25 In one embodiment, the encoder 24 of FIG. 1 performs the encryption operation by 

26 XORing each element (e.g., byte) of the plaintext file system entry 16 A with a corresponding 

27 element (e.g., byte) of the pseudo-random sequence 22. Similarly, the decoder 26 performs the 
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1 decryption operation by XORing each element (e.g., byte) of the encrypted file system entry 10 

2 with a corresponding element (e.g., byte) of the pseudo-random sequence 22 to generate the 

3 plaintext file system entry 16B. 

4 The host circuitry 12 of FIG. 1 further comprises a video controller 28 for receiving video 

5 data 30 from an external entity (e.g., a cable or satellite). The video controller 28 generates 

6 control signals 32 for controlling the operation of the cryptography facility 14 when recording an 

7 encrypted video program 8, together with the encrypted file system entry 10 for decrypting the 

8 encrypted video program 8. The video controller also processes the decrypted file system entries 

9 16B so that the encrypted video programs 8 can be decrypted and output as video data 34 to a 
10 display device. Because the file system entries 10 are stored in encrypted form relative to the 

Oil unique ID 4 assigned to the DVR 2, the encrypted video programs 8 stored on the HDD 6 cannot 

W hi be decrypted by connecting the HDD 6 to another DVR or to a PC. In effect, the HDD 6 is 

y1l3 married to the host circuitry 12 of the DVR 2 through the unique ID 4 which protects against 

CP 

fjjl4 unauthorized copying. In addition, the encrypted file system entries 10 are transparent to the 
operation of the HDD 6 so that any conventional HDD 6 may be employed without modification. 

& J a 16 In one embodiment, the plaintext file system entry 16A comprises a plaintext key for 

; SJl7 encrypting a plaintext video program into an encrypted video program 8 stored on the HDD 6. 

J2l8 The cryptography facility 14 encrypts the plaintext video program into an encrypted video 

19 program 8 stored on the HDD 6, and encrypts the plaintext key into an encrypted key stored on 

20 the HDD 6 in an encrypted file system entry 10. In one embodiment, the encoder 24 combines 

21 the pseudo-random sequence 22 with the plaintext video program to generate the encrypted video 

22 program 8 stored on the HDD 6. 

23 In another embodiment, the encrypted file system entry 10 comprises an encrypted key 

24 for decrypting an encrypted video program 8 read from the HDD 6 into a plaintext video 

25 program. The cryptography facility 14 decrypts the encrypted key read from the encrypted file 

26 system entry 10 into a plaintext key, and decrypts the encrypted video program 8 read from the 

27 HDD 6 using the plaintext key. In one embodiment, the decoder 26 combines the pseudo- 
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1 random sequence 22 with the encrypted video program 8 read from the HDD 6 to generate the 

2 plaintext video program. 

3 In one embodiment, the pseudo-random sequence generator 20 comprises a 

4 programmable file system (FS) polynomial for generating the pseudo-random sequence 22. In 

5 one embodiment, the programmable FS polynomial is programmed with coefficients which, in 

6 one embodiment, are generated by a coefficient generator responsive to the unique ID 4. In 

7 another embodiment, the programmable FS polynomial is programmed with a seed value which, 

8 in one embodiment, is generated by a seed value generator responsive to the unique ID 4. 

9 FIG. 2A shows an embodiment of the present invention wherein the FS polynomial is 
10 implemented using a suitable linear feedback register (LFSR) 36. An LFSR may be 

Oil implemented using a number of different configurations. The LFSR 36 of FIG. 2A comprises a 

CP 12 shift register 38 comprising N storage elements which are initialized with a seed value 40 

6113 generated by a seed value generator 50 from the unique ID 4. A number of taps 42A-42E 

y 14 connect a corresponding number of the storage elements to an adder 44 for adding the values 

J" 15 stored in the storage elements. The resulting sum 44 is fed back 46 to an input of the LFSR 36. 

Jl6 The LFSR 36 is shifted from left to right, and the right most storage element 48 outputs each 

pf l7 value of the pseudo-random sequence 22. 

^18 FIG. 2B shows an alternative embodiment of the present invention wherein the FS 

H ii 

19 polynomial is implemented using an LFSR 52 comprising programmable coefficients 540-54^. A 

20 coefficient generator 56 generates coefficient values 58 for programming each of the 

21 programmable coefficients 540-54^. In the embodiment shown in FIG. 2B, the coefficients are 

22 binary valued and the programmable coefficients 54 0 -54 N are implemented as switches. 

23 In yet another embodiment of the present invention, the FS polynomial is implemented 

24 using an LFSR comprising both a programmable seed value and programmable coefficients 

25 values which are generated from the unique ID 4. 

26 In one embodiment, the seed value generator 50 implements a function f(x), such as a 

27 polynomial, with the unique ID 4 as the input argument x and the seed value 40 the result. In 
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1 another embodiment, the seed value generator 50 comprises a programmable algorithm for 

2 computing the seed value 40 from the unique ID 4. This embodiment allows a DVR 

3 manufacture to select the function f(x) for implementing a line of DVRs. This embodiment also 

4 allows an external entity to update the programmable algorithm to protect against system 

5 compromise. For example, in one embodiment the DVR 2 of FIG. 1 comprises network circuitry 

6 for connecting to a network (e.g., through a cable or satellite), and a system administrator on the 

7 network periodically changes the programmable algorithm in a random manner. Thus, if an 

8 attacker discovers the algorithm used by the seed value generator 50 to generate the seed value 

9 40, the compromise is only temporary until the system administrator updates the algorithm. 

10 In another embodiment, the coefficient value generator 56 implements a plurality of 

Oil functions f(x), such as a plurality of polynomials, with the unique ID as the input argument x and 

0H2 the coefficient values 58 the result of each function f(x). The coefficient value generator 56 may 

gll3 also implement a programmable algorithm for computing the coefficient values 58 to facilitate 

hjl4 different DVR manufactures and to protect against system compromise as described above. 

15 In another embodiment of the present invention, the seed value generator 50 comprises a 

lil6 seed table comprising a plurality of table entries, each table entry comprising a seed value. An 

Sfl7 index generator, responsive to the unique ID 4, generates an index into the seed table. In yet 

"bo? 

y 18 another embodiment, the coefficient value generator 56 comprises a coefficient table comprising 

19 a plurality of table entries, each table entry comprising coefficient values. An index generator, 

20 responsive to the unique ID 4, generates an index into the coefficient table. 

21 FIG. 3 A shows an alternative embodiment of the present invention as comprising a 

22 programmable LFSR 59 for generating a pseudo-random sequence 22 used to encrypt a plaintext 

23 video program into an encrypted video program 8 stored on the HDD 6. A plaintext key 18 is 

24 used as a seed value for the LFSR 59, where the plaintext key 18 is associated with the plaintext 

25 video program. In one embodiment, the plaintext key is derived from the filename or other 

26 attribute of the video program. In another embodiment, the plaintext key is generated randomly 

27 using any suitable method, for example, by reading a system clock value just prior to encrypting 
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1 the plaintext video. 

2 FIG. 3B shows an alternative embodiment of the present invention as comprising a 

3 programmable LFSR 60 for generating a pseudo-random sequence 22 used to encrypt a plaintext 

4 video program into an encrypted video program 8 stored on the HDD 6. A seed value generator 

5 62 generates a seed value 64 used to initialize the shift register 38. The seed value 64 is 

6 generated from the plaintext key 18 used to encrypt the plaintext video program. In one 

7 embodiment, the plaintext video program is encrypted in segments, and the seed value generator 

8 62 generates a distinct seed value 64 for each segment number 66. Each segment seed value 64 

9 is essentially a distinct key for use in encrypting a corresponding segment of the plaintext video 

10 program. In this manner, compromise of a single key enables successful decrypting of only a 

1 1 segment of the encrypted video program. 

12 In one embodiment, the plaintext key 18 comprises a plurality of segment keys for 

13 encrypting each segment of the plaintext video program, and the seed value generator 62 

14 generates a corresponding seed value 64 for each segment key. In another embodiment, the 

15 segment keys are computed from the plaintext key 18, and the seed value generator 62 generates 

16 a corresponding seed value 64 for each computed segment key. In one embodiment, the seed 

17 value generator 62 comprises a function f(x,y) for computing the segment seed values 64 wherein 

18 the plaintext key 18 and segment number 66 are the input arguments x and y, and the segment 

19 seed value 64 is the result. Lookup tables may also be employed for generating the segment 

20 keys, and the algorithm for computing the segment keys may be programmably updated to 

21 facilitate different DVR manufactures and to protect against system compromise as described 

22 above. 

23 FIG. 3C shows an alternative embodiment of the present invention as comprising a 

24 programmable LFSR 68 for generating a pseudo-random sequence 22 used to encode a plaintext 

25 video program into an encrypted video program 8 stored on the HDD 6. A coefficient value 

26 generator 70 generates a coefficient values 72 used to initialize the coefficients of the LFSR 68. 

27 The coefficient values 72 are generated from the plaintext key 18 used to encrypt the plaintext 
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1 video program. In one embodiment, the plaintext video program is encrypted in segments, and 

2 the coefficient value generator 70 generates distinct coefficient values 72 for each segment 

3 number 66. Similar to the embodiment of FIG. 3B, each set of coefficient values 72 is 

4 essentially a distinct key for use in encrypting a corresponding segment of the plaintext video 

5 program so that compromise of a single key enables successful decrypting of only a segment of 

6 the encrypted video program. 

7 In one embodiment, the plaintext key 18 comprises a plurality of segment keys for 

8 encrypting each segment of the plaintext video program, and the coefficient value generator 70 

9 generates a set of coefficient values 72 for each segment key. In another embodiment, the 
10 segment keys are computed from the plaintext key 18, and the coefficient value generator 70 

Oil generates a corresponding set of coefficient values 72 for each computed segment key. In one 

81 12 embodiment, the coefficient value generator 70 comprises a function f(x,y) for computing the 

Oil 3 segment coefficient values 72 wherein the plaintext key 18 and segment number 66 are the input 

y 14 arguments x and y, and the segment coefficient values 72 are the result. Lookup tables may also 

r 15 be employed for generating the segment keys, and the algorithm for computing the segment keys 

^16 may be programmably updated to facilitate different DVR manufactures and to protect against 

22 17 system compromise as described above. 

- S 18 In another embodiment, the LFSR 60 of FIG. 3B or the LFSR 68 of FIG. 3C is used to 

19 decrypt an encrypted video program 8 in segments using the segment keys. In one embodiment, 

20 the plaintext key 18 comprises a plurality of segment keys which are encrypted and stored as an 

21 encrypted file system entry 10 for use in decrypting the encrypted video program 8 during 

22 playback. In another embodiment, the plaintext key 18 is encrypted and stored as an encrypted 

23 file system entry 10. During playback, the encrypted key is decrypted into the plaintext key 18, 

24 and the plaintext key 18 is used to generate the segment keys for use in decrypting the encrypted 

25 video program 8 in segments. 

26 In one embodiment, the HDD 6 comprises a disk having a plurality of data tracks, where 

27 each data track comprises a plurality of data sectors. In the embodiments of FIG. 3B and 3C, a 
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1 segment of a video program corresponds to a data sector. This simplifies the design since data is 

2 typically written to and read from a conventional HDD 6 in sector blocks. In one embodiment, 

3 the encrypted key for use in decrypting a corresponding sector is stored in the sector. 

4 In another embodiment of the present invention, the unique ID 4 is implemented using 

5 tamper and inspection resistant circuitry to protect against discovery. In one embodiment, the 

6 host circuitry 12 and unique ID 4 are implemented within an integrated circuit (IC), and the 

7 unique ID 4 is buried, scattered or otherwise concealed within the IC using any suitable method. 

8 In yet another embodiment, at least part of the cryptography facility 14 (e.g., the seed value 

9 generator 62 of FIG. 3B or the coefficient value generator 70 of FIG. 3C) is implemented using 

10 tamper and inspection resistant circuitry to protect against discovery. An example of tamper and 

11 inspection resistant circuitry is disclosed in Tygar, J.D. and Yee, B.S., "Secure Coprocessors in 

12 Electronic Commerce Applications," Proceedings 1995 USENIX Electronic Commerce 

13 Workshop, 1995, New York, which is incorporated herein by reference. 

14 The embodiments of the present invention may be implemented in circuitry or software 

15 or both. The circuitry and/or software may be static or field programmable as described above. 

16 Software embodiments comprise code segments embodied on a computer readable medium, such 

17 as a hard disk, floppy disk, compact disk (CD), digital video disk (DVD), or programmable 

18 memory (e.g., an EEPROM). The code segments may be embodied on the computer readable 

19 medium in any suitable form, such as source code segments, assembly code segments, or 

20 executable code segments. 
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1 WE CLAIM: 

1 1 . A digital video recorder comprising: 

2 (a) a unique ID; 

3 (b) a hard disk drive (HDD) for storing a plurality of encrypted video programs and an 

4 encrypted file system, the encrypted file system comprising a plurality of encrypted 

5 file system entries for decrypting the plurality of encrypted video programs; 

6 (c) host circuitry for interfacing with the HDD, the host circuitry comprising a 

7 cryptography facility for encrypting plaintext file system entries into the encrypted 

8 file system entries stored on the HDD, and for decrypting the encrypted file system 

9 entries read from the HDD into plaintext file system entries, the cryptography facility 

10 comprising: 

1 1 a pseudo-random sequence generator, responsive to the unique ID, for generating 

12 a pseudo-random sequence; 

13 an encoder for combining the pseudo-random sequence with the plaintext file 

14 system entries to generate the encrypted file system entries stored on the 

15 HDD; and 

16 a decoder for combining the pseudo-random sequence with the encrypted file 

17 system entries read from the HDD to generate the plaintext file system 

18 entries. 

1 2. The digital video recorder as recited in claim 1, wherein: 

2 (a) the plaintext file system entry comprises a plaintext key for encrypting a plaintext 

3 video program into an encrypted video program stored on the HDD; and 

4 (b) the cryptography facility: 

5 uses the plaintext key to encrypt the plaintext video program into an encrypted video 

6 program stored on the HDD; and 

7 encrypts the plaintext key into an encrypted key stored in one of the encrypted file 

8 system entries on the HDD. 
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1 3. The digital video recorder as recited in claim 1, wherein: 

2 (a) the encrypted file system entry comprises an encrypted key for decrypting an 

3 encrypted video program read from the HDD into a plaintext video program; and 

4 (b) the cryptography facility: 

5 decrypts the encrypted key read from the HDD into a plaintext key; and 

6 decrypts the encrypted video program read from the HDD using the plaintext key. 

1 4. The digital video recorder as recited in claim 2, wherein the encoder combines the 

2 pseudo-random sequence with the plaintext video program to generate the encrypted 

3 video program stored on the HDD. 

1 5. The digital video recorder as recited in claim 3, wherein the decoder combines the 

2 pseudo-random sequence with the encrypted video program read from the HDD to 

3 generate the plaintext video program. 

1 6. The digital video recorder as recited in claim 1, wherein the pseudo-random sequence 

2 generator comprises a programmable file system (FS) polynomial for generating the 

3 pseudo-random sequence. 

1 7. The digital video recorder as recited in claim 6, wherein the programmable FS 

2 polynomial is programmed with coefficient values. 

1 8. The digital video recorder as recited in claim 7, further comprising a coefficient value 

2 generator for generating the coefficient values from the unique ID. 

1 9. The digital video recorder as recited in claim 7, wherein the coefficient value generator 

2 comprises a programmable algorithm for generating the coefficient values from the 

3 unique ID. 

1 10. The digital video recorder as recited in claim 9 ? wherein the host circuitry further 
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2 comprises interface circuitry for receiving command information from an external entity 

3 to program the programmable algorithm. 

1 11. The digital video recorder as recited in claim 6, wherein the programmable FS 

2 polynomial is programmed with a seed value. 

1 12. The digital video recorder as recited in claim 11, further comprising a seed value 

2 generator for generating the seed value from the unique ID. 

1 13. The digital video recorder as recited in claim 12, wherein the seed value generator 

2 comprises a programmable algorithm for generating the seed value from the unique ID. 

1 14. The digital video recorder as recited in claim 13, wherein the host circuitry further 

2 comprises interface circuitry for receiving command information from an external entity 

3 to program the programmable algorithm. 

1 15. The digital video recorder as recited in claim 6, wherein the programmable FS 

2 polynomial comprises a programmable linear feedback shift register. 

1 16. The digital video recorder as recited in claim 8, wherein the coefficient value generator 

2 comprises: 

3 (a) a coefficient table comprising a plurality of table entries, each table entry comprising 

4 coefficient values; and 

5 (b) an index generator, responsive to the unique ID, for generating an index into the 

6 coefficient table. 

1 17. The digital video recorder as recited in claim 12, wherein the seed value generator 

2 comprises: 

3 (a) a seed table comprising a plurality of table entries, each table entry comprising a seed 

4 value; and 
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5 (b) an index generator, responsive to the unique ID, for generating an index into the seed 

6 table. 

1 18. The digital video recorder as recited in claim 2, wherein: 

2 (a) the plaintext key comprises a plurality of segment keys; and 

3 (b) each segment key for encrypting a segment of the plaintext video program. 

1 19. The digital video recorder as recited in claim 2, wherein: 

2 (c) a plurality of segment keys are generated from the plaintext key; and 

3 (d) each segment key for encrypting a segment of the plaintext video program. 



Y:\K35A\A0600-A0699\A0670\DOCS\k35a0670paf.doc 9/29/00 



14 



PATENT 

ATTY DOCKET K35A0670 



1 20. A method of processing video programs in a digital video recorder comprising host 

2 circuitry and a hard disk drive (HDD) for storing encrypted video programs and 

3 encrypted file system entries for use in decrypting the encrypted video programs, the 

4 method comprising the steps of: 

5 (a) generating a pseudo-random sequence from a unique ID associated with the host 

6 circuitry; 

7 (b) combining the pseudo-random sequence with a plaintext file system entry to generate 

8 one of the encrypted file system entries; 

9 (c) storing the encrypted file system entry on the HDD; 

10 (d) reading the encrypted file system entry from the HDD; and 

1 1 (e) combining the pseudo-random sequence with the encrypted file system entry read 

12 from the HDD to generate the plaintext file system entry. 

1 21 . The method of processing video programs as recited in claim 20, wherein the plaintext 

2 file system entry comprises a plaintext key for encrypting a plaintext video program into 

3 an encrypted video program stored on the HDD, further comprising the steps of: 

4 (a) using the plaintext key to encrypt the plaintext video program into an encrypted video 

5 program; 

6 (b) storing the encrypted video program on the HDD; 

7 (c) encrypting the plaintext key into an encrypted key; and 

8 (d) storing the encrypted key in one of the encrypted file system entries on the HDD. 

1 22. The method of processing video programs as recited in claim 20, wherein the encrypted 

2 file system entry comprises an encrypted key for decrypting an encrypted video program 

3 read from the HDD into a plaintext video program, further comprising the steps of: 

4 (a) reading the encrypted key from the HDD; 

5 (b) decrypting the encrypted key into a plaintext key; 

6 (c) reading the encrypted video program from the HDD; and 
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7 (d) decrypting the encrypted video program using the plaintext key. 

1 23. The method of processing video programs as recited in claim 21, wherein the step of 

2 encrypting the plaintext video program comprises the step of combining the pseudo- 

3 random sequence with the plaintext video program. 

1 24. The method of processing video programs as recited in claim 22, wherein the step of 

2 decrypting the encrypted video program comprises the step of combining the pseudo- 

3 random sequence with the encrypted video program. 

1 25. The method of processing video programs as recited in claim 20, wherein the pseudo- 

2 random sequence is generated using a programmable file system (FS) polynomial. 

1 26. The method of processing video programs as recited in claim 25 , further comprising the 

2 step of programming the programmable FS polynomial with coefficient values. 

1 27. The method of processing video programs as recited in claim 26, further comprising the 

2 step of generating the coefficient values from the unique ID. 

1 28. The method of processing video programs as recited in claim 27, further comprising the 

2 step of generating the coefficient values from the unique ID using a programmable 

3 algorithm. 

1 29. The method of processing video programs as recited in claim 28, further comprising the 

2 step of receiving command information from an external entity to program the 

3 programmable algorithm. 

1 30. The method of processing video programs as recited in claim 25, further comprising the 

2 step of programming the programmable FS polynomial with a seed value. 

1 31. The method of processing video programs as recited in claim 30, further comprising the 
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2 step of generating the seed value from the unique ID. 

1 32. The method of processing video programs as recited in claim 31, further comprising the 

2 step of generating the seed value from the unique ID using a programmable algorithm. 

1 33. The method of processing video programs as recited in claim 32, further comprising the 

2 step of receiving command information from an external entity to program the 

3 programmable algorithm. 

1 34. The method of processing video programs as recited in claim 25, wherein the 

2 programmable FS polynomial comprises a programmable linear feedback shift register. 

1 35. The method of processing video programs as recited in claim 27, wherein the step of 

2 generating the coefficient values comprises the step of generating an index from the 

3 unique ID, the index for indexing a coefficient table comprising a plurality of table 

4 entries, each table entry comprising coefficient values. 

1 36. The method of processing video programs as recited in claim 31, wherein the step of 

2 generating the seed value comprises the step of generating an index from the unique ID, 

3 the index for indexing a seed table comprising a plurality of table entries, each table entry 

4 comprising a seed value. 

1 37. The method of processing video programs as recited in claim 2 1 , wherein the plaintext 

2 key comprises a plurality of segment keys, further comprising the step of encrypting 

3 segments of the plaintext video program using respective segment keys. 

1 38. The method of processing video programs as recited in claim 21, further comprising the 

2 steps of: 

3 (a) generating a plurality of segment keys from the plaintext key; and 

4 (b) encrypting segments of the plaintext video program using respective segment keys. 
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1 DIGITAL VIDEO RECORDER EMPLOYING A FILE SYSTEM ENCRYPTED USING 

2 A PSEUDO-RANDOM SEQUENCE GENERATED FROM A UNIQUE ID 

3 

4 ABSTRACT OF THE DISCLOSURE 

5 A digital video recorder (DVR) is disclosed comprising a unique ID, a hard disk drive 

6 (HDD) for storing a plurality of encrypted video programs and an encrypted file system, the 

7 encrypted file system comprising a plurality of encrypted file system entries for decrypting the 

8 plurality of video programs. The DVR further comprises host circuitry for interfacing with the 

9 HDD, the host circuitry comprising a cryptography facility for encrypting plaintext file system 

10 entries into the encrypted file system entries stored on the HDD, and for decrypting the encrypted 

11 file system entries read from the HDD into plaintext file system entries. The cryptography 

12 facility comprises a pseudo-random sequence generator, responsive to the unique ED, for 

13 generating a pseudo-random sequence. The cryptography facility further comprises an encoder 

14 for combining the pseudo-random sequence with the plaintext file system entries to generate the 

15 encrypted file system entries stored on the HDD, and a decoder for combining the pseudo- 

16 random sequence with the encrypted file system entries read from the HDD to generate the 

17 plaintext file system entries. 
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